This is an automated email from the ASF dual-hosted git repository.
juzhiyuan pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/apisix-website.git
The following commit(s) were added to refs/heads/master by this push:
new 6753dd76f08 docs: update 0614 three blog EN images (#1242)
6753dd76f08 is described below
commit 6753dd76f08f4821a80428fa50cbca936def20b8
Author: Sylvia <[email protected]>
AuthorDate: Thu Jul 28 18:26:22 2022 +0800
docs: update 0614 three blog EN images (#1242)
---
blog/en/blog/2022/06/14/automated-operation-base-apache-apisix.md | 8 ++++----
.../06/14/how-mse-supports-canary-release-with-apache-apisix.md | 6 +++---
blog/en/blog/2022/06/14/xueqiu-with-apache-apisix.md | 8 ++++----
3 files changed, 11 insertions(+), 11 deletions(-)
diff --git a/blog/en/blog/2022/06/14/automated-operation-base-apache-apisix.md
b/blog/en/blog/2022/06/14/automated-operation-base-apache-apisix.md
index 0d4ad7344fa..317fdf570c6 100644
--- a/blog/en/blog/2022/06/14/automated-operation-base-apache-apisix.md
+++ b/blog/en/blog/2022/06/14/automated-operation-base-apache-apisix.md
@@ -35,7 +35,7 @@ During the selection of gateway, we have carried out the
actual test. Compared w
The overall architecture of the automation operation and maintenance platform
is as follows:
-
+
- Storage layer: the core is CMDB. Its main function is to record and manage
the attributes of the organization's business and its resources, as well as the
relationships between them. Not only is it responsible for querying the initial
status of all business changes, but also all business resource changes should
be fed back and recorded in it to realize the control of business standards and
specifications. The storage layer also contains some authority management data,
business work ord [...]
@@ -73,7 +73,7 @@ The overall architecture of the automation operation and
maintenance platform is
For all Web frameworks, user login is a mandatory option, and I will introduce
this scenario to you next.
-
+
First of all, we need to understand the relevant components we use in the
scenario. The first is the access front end, which is outside the gateway.
Secondly, we use the APISIX cloud native API gateway as the business boundary.
Then the auth service, which is a self-defined microservice, is used to verify
the front-end URL request and user login request, and issue tokens to
authenticated users. LDAP stores the company's internal password information.
CMDB stores some business-related inf [...]
@@ -87,11 +87,11 @@ Here, we use the [`consumer
restriction`](https://apisix.apache.org/zh/docs/apis
Through the above description, I believe you have a certain understanding of
the normal request process. Next, I will introduce you to the scenarios of how
to judge the insufficient permissions of these users. In the operation and
maintenance platform, if there is an operation involving data change, a token
must be carried. When the token is verified by the ACL interface that it has no
access, it will directly return to a page that is forbidden to access for the
front end to the process. [...]
-
+
### New service microservice access
-
+
In our daily work, we often launch some microservices, so how can we connect
this microservice to the automatic operation and maintenance platform?
diff --git
a/blog/en/blog/2022/06/14/how-mse-supports-canary-release-with-apache-apisix.md
b/blog/en/blog/2022/06/14/how-mse-supports-canary-release-with-apache-apisix.md
index 7f1d54af25e..1348658724b 100644
---
a/blog/en/blog/2022/06/14/how-mse-supports-canary-release-with-apache-apisix.md
+++
b/blog/en/blog/2022/06/14/how-mse-supports-canary-release-with-apache-apisix.md
@@ -55,7 +55,7 @@ How to quickly implement canary release solution along the
whole life cycle in t
Physical environment isolation, in fact, is to build real traffic isolation by
adding machines.
-
+
This scheme needs to build a set of network isolated and resource-independent
environments for canary services, and deploy the canary version of the services
in it. Because it is isolated from the formal environment, other services in
the formal environment cannot access the services that need canary release.
Therefore, these online services need to be deployed redundantly in the canary
deployment so that the entire call link can forward traffic normally. In
addition, some other dependen [...]
@@ -65,7 +65,7 @@ This scheme is generally used to build enterprise testing and
pre development en
The other scheme is to build a logical environment isolation. We only need to
deploy the canary version of the service. When the traffic flows on the call
link, the gateway, each middleware and each micro service passing through will
identify the canary traffic and dynamically forward it to the canary version of
the corresponding service. As shown below:
-
+
The above figure can well show the effect of this scheme. We use different
colors to represent the canary traffic of different versions. It can be seen
that both the microservice gateway and the microservice itself need to identify
the traffic and make dynamic decisions according to the governance rules. When
the service version changes, the forwarding of this call link will also change
in real time. Compared with the canary deployment built by machines, this
scheme can not only save a l [...]
@@ -254,7 +254,7 @@ Then configure the route corresponding to the `base`:
Configure the route corresponding to `gray`, as shown in the following figure:
-
+
```json
{
diff --git a/blog/en/blog/2022/06/14/xueqiu-with-apache-apisix.md
b/blog/en/blog/2022/06/14/xueqiu-with-apache-apisix.md
index 7ce0d6bed48..8c80d8e8437 100644
--- a/blog/en/blog/2022/06/14/xueqiu-with-apache-apisix.md
+++ b/blog/en/blog/2022/06/14/xueqiu-with-apache-apisix.md
@@ -30,7 +30,7 @@ Among them, the real-time quotes service is docked to a
variety of upstream data
Apache APISIX can greatly simplify the complexity of implementing a
dual-active architecture. APISIX's own cloud-native features, rich community
ecology and plug-ins also lay a good foundation for the future evolution of
Xueqiu's cloud-native architecture. In this article, we will introduce how
Xueqiu is using Apache APISIX to evolve its internal dual-active architecture.
-
+
The diagram above depicts the simple architecture of Xueqiu single room
period, user traffic comes in from the cloud portal (SLB), and is processed by
the gateway for simple public nature logic and forwarded to the back-end
service. The back-end service will be through the SDK, the authentication
module integrated in the service to the Xueqiu user center to initiate user
authentication, and then continue to follow the business processing.
@@ -58,13 +58,13 @@ So on top of these pain points, Xueqiu wanted to be as
transparent as possible t
Based on the pain points that became apparent in the business practice
scenarios, the Xueqiu Infrastructure team began researching gateway products.
Through internal requirements and the comparison of current market gateway
products, the final choice of the subsequent architecture based on Apache
APISIX adjustment and use.
-
+
## Apache APISIX Practice
### Adjusted architecture
-
+
The above figure shows the current dual-active architecture of Xueqiu Quotes.
The left side shows the corresponding architecture in the original server room
without much change; the right side shows the multi-live architecture designed
based on multiple regions after going to the cloud.
@@ -120,7 +120,7 @@ Currently, Xueqiu gRPC service calls are based on the
Zookeeper registry for reg
The specific implementation is mainly on a content node of APISIX, when the
worker process starts to poll the ZK-Rest cluster like in the figure below, and
then regularly pull the source data information and actual information of the
whole service, update to the local cache in the worker process, and use it to
update the service list.
-
+
As you can see from the above diagram, the ZK-Rest cluster is equivalent to
accessing the data of ZooKeeper through the form of Rest. Therefore, the whole
process is actually less functional (mainly based on its own business scenario
requirements), and only one instance of it needs to be added to achieve the
high availability feature, eliminating some complex operations.
